Secure Dose

Friday, 1 April 2016

InfoSec Positions today!

When we dive into InfoSec, we generally try finding what are the jobs positions, what are their role, etc..With a small compilation, lets find what all position we have in the filed of Security and what are their roles.Following is a small list:Security Engineer:Security engineers have responsibility for developing effective computing fixes to increase the security of their company's systems and projects. They are in charge of creating innovative ways to solve existing production security issues and must possess an advanced understanding of intrusion detection and prevention protocols.Security Engineer Tasks:

Create test plans which will allow for a proper evaluation of security issues for new hardware and software.

Identify security solutions and implement a multi-layered defense to protect the networks.

Test new or upgraded hardware and software and implement new technologies.

Configure and set up firewalls and intrusion detection systems.

Respond to network intrusions and be familiar with performing forensic investigation.

Information Security Engineer:Large enterprise have employees working in a variety of office locations, job sites, and home environments (through telecommuting). Information security engineers help maintaining integrity of all data communicated and stored through the business enterprise. They maintain and develop protocols for the safe use, entry, transmission, Transactions, and retrieval of data and software assets at a company.

Information Security Engineer Tasks:

Create test plans which will allow for a proper evaluation of security issues for new hardware and software.

Identify security solutions and implement a multi-layered defense to protect the networks.

Test new or upgraded hardware and software and implement new technologies.

Configure and set up firewalls and intrusion detection systems.

Respond to network intrusions and be familiar with performing forensic investigation.

Security Consultant/Adviser:

Security Advisers evaluate the existing security to conclude the potential risk of a breach. The consultant develops security policies and procedures that reduces the risk to objects, employees and computer systems. Consultants may also provide evaluations and assessments in collaboration with sales staff for the security business.

Security Consultant Tasks:

Develop security design

Design security processes and documentation(Policies).

Conduct a security test and prepare a report for all the weakness along with their solution and fix.

Demonstrate the designed security system.

Security Analyst:

A security analyst is responsible for maintaining the security and data integrity within the company or an organization. Security analyst have the knowledge about the security information of his company. The security analyst has to even work with the business administration as well as its IT department for communicating flaws and security investments.

Security Analyst Tasks:

Responsible for protecting sensitive data

Responsible to ensure that nobody can have an unauthorized access to the system or network.

Security analyst must plan and document all security information which includes physical and internet security.

*Note:There are lots of position but I haven't covered them all just for the sake of simplicity.

The Blog is completly related to websec and sometimes other branches of Information Security. It focus on theory and practical both with some resource section provided where I share my presentation pdf where I recently give my talk. Have a good read and suggestions are always welcome.